Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

CISCO Meraki MS 120 - Qualys Vulnerability Scan

Solved
Holiver
Just browsing
‎Jan 5 2024 4:17 AM
‎Jan 5 2024 4:17 AM

CISCO Meraki MS 120 - Qualys Vulnerability Scan

Hello Team,

 

We have a customer that uses CISCO Meraki.

I would like to know if is it possible to perform a Vulnerability Scans using some type of service credential? Authenticated Scan?

0 Kudos
Subscribe
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 4:33 AM
‎Jan 5 2024 4:33 AM

Yes, but it will not be that useful like the scanning of PCs for example.

There is not much to scan for what a login is needed. But it could be HTTP for the status page and SNMP.

View solution in original post

Subscribe
8 Replies 8
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 4:33 AM
‎Jan 5 2024 4:33 AM

Yes, but it will not be that useful like the scanning of PCs for example.

There is not much to scan for what a login is needed. But it could be HTTP for the status page and SNMP.

Subscribe
In response to KarstenI
Holiver
Just browsing
‎Jan 5 2024 7:19 AM
‎Jan 5 2024 7:19 AM 

I tried to perform the scan via SNMP but it did not authenticated. 
Is there any configuration that I need to perform on Meraki to enable the Scan via SNMP?
0 Kudos
Subscribe
In response to Holiver
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 7:46 AM
‎Jan 5 2024 7:46 AM

It has to be enabled:

https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/SNMP_Overview_and_C...

You need to enable it for the devices (Network-wide > Configure > General > Reporting), not for the Dashboard.

0 Kudos
Subscribe
In response to KarstenI
Holiver
Just browsing
‎Mar 8 2024 7:38 AM
‎Mar 8 2024 7:38 AM

Hi, KarstenI.

The firewall team activated the SNMP settings according procedure, but the vulnerability scan does not authenticate with the community credentials.
Do you know someone who already managed to perform an authenticated Qualys Scan on Meraki via SNMP?

The Qualys Vulnerability Scan is able to peform this Scan on Meraki?
Qualys support/have compatibility to perform this Scan according to Qualys Matrix Support?
Link bellow (Authentication Technologies Matrix):
 https://success.qualys.com/support/s/article/000006761

0 Kudos
Subscribe
In response to Holiver
KarstenI
Kind of a big deal
Kind of a big deal
‎Mar 8 2024 7:49 AM
‎Mar 8 2024 7:49 AM

Sorry, no. I don't have this anywhere running. But you can start troubleshooting by trying to query the device with snmpwalk.

0 Kudos
Subscribe
Inderdeep
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 6:33 AM
‎Jan 5 2024 6:33 AM

Yes, as we are using Qualys for all Cisco and Meraki devices as well. Go ahead

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
Subscribe
In response to Inderdeep
Holiver
Just browsing
‎Jan 5 2024 7:20 AM
‎Jan 5 2024 7:20 AM 

Do you have some process or recommendation related to how to perform a vulnerability Scan?

 

0 Kudos
Subscribe
In response to Holiver
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Jan 7 2024 1:13 PM
‎Jan 7 2024 1:13 PM

My advice with vulnerability scans is if you don't know how to do these I would approach a company to do this. This information needs to be accurate because if it's not and the customer gets attacked and the cause was something that should have been in your report you could be liable. 

btr.net.nz
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.